Security Service of Ukraine

The Security Service of Ukraine faced a sophisticated phishing campaign identified as UAC-0198, which was orchestrated by a Russia-linked actor. This campaign actively targeted government entities by employing the impersonation of SSU to distribute ANONVNC malware, also known as MESHAGENT, via a misleading email containing a link to a malicious 'Documents.zip' file. Once executed, the malware granted attackers remote control over the infected systems. Over 100 government and local government agency computers were reported infected as of August 12, 2024, leading to unauthorized access and potential data compromise.

Source: https://securityaffairs.com/166970/apt/cert-ua-warns-security-service-of-ukraine-campaign.html

"id": "?li000081524",
"linkid": "?lipi=urn%3Ali%3Apage%3Ad_flagship3_detail_base%3BcGePTGTwRh649jVmfrwWKA%3D%3D",
"type": "Breach",
"date": "8/2024",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"